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This application is submitted in the name of inventors Jane Jin, Jie Chu, Maria Dos 
Santos, Shuxian Lou and Shujin Zhang, assignors to Cisco Technology, Inc., a 
California Corporation. 

5 SPECIFICATION 

TITLE OF INVENTION 
USE OF PRECEDENCE BITS FOR QUALITY OF SERVICE 
BACKGROUND OF THE INVENTION 

Field of the Invention 

The present invention relates to the field of data communications networks. More 
particularly, this invention relates to a method and apparatus for implementing a quality 
of service (QoS) policy in a data communications network so as to thereby prioritize 
network traf fic into a plurality of service levels and provide preferential treatment of 
different classes of data traffic on the data communications network. A number of 
priority levels may be implemented in accordance with the invention. 

The Background 

20 This invention relates to switched packet data communications networks. There 

are a number of different packet types which are used in modern switched packet data 
communications networks. 

FIG. 1 A depicts a generic packet 8 using Layer 2 encapsulation. A number of 
25 different Layer 2 encapsulation protocols are recognized. Each includes a MAC (media 
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access control) destination address 10 and a MAC source address 12. The data 14 may 
include Layer 3 encapsulated packet information. A CRC (cyclic redundancy check) 16 
is also provided at the end of the Layer 2 encapsulation. The unlabeled block 18 may 
include an Ethernet type for Ethernet V 2.0 (ARPA) packets. The Ethernet type may 
5 include IPv4 (IP) (in the future, IPv6), IPX, AppleTalk, DEC Net, Vines IP/Vines Echo, 
XNS, ARP or RARP. Other known encapsulations include SAP, SAP1, SNAP and the 
like. The meaning of the bits in block 18 differs among the different encapsulation 
protocols. This information is sometimes referred to as the Layer 2 Flow Information. 

10 FIG. IB depicts a typical IP packet (Layer 3) structure. The IP packet format is 

presently one of the most common Layer 3 packet types. The fields of importance to this 
disclosure are the "ToS value" or type of service 26 which is a preferably 8-bit field also 
known as Differentiated Services ("DS"), "prot-typ" or IP protocol type 28 (typically 
either TCP (transmission control protocol) or UDP (user datagram protocol), the Source 

15 IP address 30 (usually the IP address of the originating station), the Destination IP 

address 32 (usually the IP address of the ultimate destination station), the Layer 4 source 
port number 34 (available for TCP and UDP packets only) and the Layer 4 destination 
port number 36 (available for TCP and UDP packets only). The Layer 4 flow 
information may be used to identify a particular packet flow as being the product of 

20 (source port) or directed to (destination port) a particular application. The ToS 

/Differentiated Services field is used by routers of the data communications network to 
provide priority/delay/dropping services. 
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As the use of data communications networks increases worldwide, congestion of 
those networks has become a problem. A given data communications network, a given 
node on a data communications network, or a given link connecting two nodes has a 
certain capacity to pass data packets and that capacity cannot be exceeded. When data 
5 traffic on the data communications network becomes heavy enough that one can 

anticipate congestion problems which might lead to packets being dropped, it is desirable 
to implement a "Quality of Service" or QoS policy so as to give priority to certain types 
of traffic and/or customers so as not to drop their packets, thus assuring that critical 
communications are able to pass through the data communications network and/or 

m. 10 providing a guaranteed service level, albeit at the expense of less critical 

i 1 communications. 

^ The QoS level mapped into the ToS/Differentiated Services precedence bits (or 

^ other bits of the packet) is used by devices such as routers, gateways and switches within 

il 15 a data communications network in a number of ways. For example, packet rate limiting 
c) may be imposed to cap a user's throughput of packets to a given contract level specified 

in a service agreement with the user. In this way limited system services may not be 
over- used by those paying the least for those services. In another example, packet rate 
limiting may be imposed under congested network conditions to drop or modify packets 
20 based, at least in part, upon the QoS level associated with the packet. Those with a 

"higher" QoS level will do better in getting their communications through in congested 
conditions than those with a "lower" QoS level. 
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One way in which the ToS bits of the IP header are presently used is to use edge 
routers 38 as shown in FIG. 2 to interface between users 40 and core routers 42, 44, 46. 
In accordance with this approach the edge routers are used to set the ToS precedence bits 
(the highest order three bits of the eight-bit ToS/Differentiated Services field) based 
5 upon the source IP address of the packet. While this can be effective in some 
environments, it is rather inflexible since it is based solely on pre-programmed IP 
addresses and creates administrative burdens in programming all of the edge routers. It is 
also ineffective in handling many types of roaming users and/or users with dynamically 
assigned IP addresses such as those obtained or leased from DHCP (dynamic host control 
10 protocol) servers. 

Accordingly, a need exists for a QoS system which can provide for the QoS needs 
of roaming or DHCP users while simplifying the task of programming QoS levels 
associated with the user. Furthermore, it would be desirable to provide a QoS system that 
15 provides on-demand QoS rather than a fixed QoS for each user to better accommodate 
the shifting needs of users. 

SUMMARY OF THE INVENTION 
Certain bits of a packet, such as bits in the IP header of an IP packet, are used to 
20 designate the type of service or Quality of Service (QoS) level to be afforded to the 

packet as it passes through a data communications network. A user entitled to a certain 
QoS level logs into a service selection gateway SSG. The SSG queries an authentication, 
authorization and accounting (AAA) server in response to a log-in attempt by the user. 
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Upon authorization, the AAA server returns an access accept signal in addition to an 
indication from the user's service profile (user profile) as to the QoS level to be afforded 
the user. While the user is logged in, all packets are routed through the SSG. The SSG 
sets the certain bits of the packet in accordance with the user's assigned QoS level so that 
5 as the packets are routed through the data communications network, they are consistently 
afforded the assigned Quality of Service level. In another aspect of the invention, on- 
demand QoS may be provided by the SSG and accounted for by communications with the 
AAA server. 
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BRIEF DESCRIPTION OF THE DRAWINGS 



FIG. 1 A is a diagram showing the structure of a typical Ethernet packet. 



FIG. IB is a diagram showing the basic structure of a Layer 3 IP packet. 



15 



FIG. 2 is a system block diagram of a typical network interface to a user. 



FIG. 3 is a system block diagram of a data communications network in 



accordance with a presently preferred embodiment of the present invention. 



20 



FIG. 4 is a flow diagram of a first method of setting QoS for an IP packet in 



accordance with one embodiment of the present invention. 
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FIG. 5 is a flow diagram of a second method of setting QoS for an IP packet in 
accordance with another embodiment of the present invention. 

DETAILED DESCRIPTION OF A PREFERRED EMBODIMENT 
5 Those of ordinary skill in the art will realize that the following description of the 

present invention is illustrative only and not in any way limiting. Other embodiments of 
the invention will readily suggest themselves to such skilled persons after a perusal of the 
within disclosure. 

10 In accordance with a presently preferred embodiment of the present invention, the 

components, processes and/or data structures are implemented using a gateway device 
implemented using C++ programs running on an Enterprise 2000™ server running Sun 
Solaris ™ as its operating system. The Enterprise 2000™ server and Sun Solaris™ 
operating system are products available from Sun Microsystems, Inc. of Mountain View, 

15 California. Different implementations may be used and may include other types of 
operating systems, computing platforms, computer programs, firmware and/or general 
purpose machines. In addition, those of ordinary skill in the art will readily recognize 
that devices of a less general purpose nature, such as hardwired devices, devices relying 
on FPGA (field programmable gate array) or ASIC (Application Specific Integrated 

20 Circuit) technology, or the like, may also be used without departing from the scope and 
spirit of the inventive concepts disclosed herein. 
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In accordance with a presently preferred embodiment of the present invention, the 
three Precedence bits (the three highest order or most significant bits of the 8-bit Type of 
Service (ToS)/Differentiated Services field 26 of the IP packet header) are used to 
designate the type of service or Quality of Service (QoS) level to be given to packets 
5 sourced from a particular user. Those of ordinary skill in the art will realize that the 
particular bits used are not particularly critical, for example, the CoS (Class of Services) 
bits of an IEEE 802. Iq encapsulated frame could be used as could the CoS bits in an ISL 
frame. Other bits or fields could also be designated to carry the QoS level information. 
A 3-bit ToS permits up to 8 levels of service. Initially, more than three bits could be 
m 10 used, if desired. 

J*. ™* 

i!\ The present invention makes use of a user's service profile. A service profile, 

W sometimes referred to as a user profile, contains information relating to a particular user's 

: ' s network access account. For example, it may include an identification of the user's last 

jL7 • 15 known home PoP (point of presence) or home gateway located in a PoP. It may include 
Lf§ the identification of one or more domain name server(s) (DNS) to use in resolving 

domain names to IP addresses. It may include details about the user's service agreement 
with the ISP (internet service provider) servicing the user's account. Such information 
may include an identification of the QoS level to be provided to the user. For example, if 
20 the user is a "Platinum" user, he or she might receive a level 8 ToS thus granting his/her 
packets the best service. A normal user not paying a premium for a higher QoS might be 
afforded a level 1 ToS. 
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The user profile is stored in AAA (authentication, authorization and accounting) 
servers disposed in various locations in the data communications network. 

The authentication, authorization and accounting (AAA) server performs user 
5 authentication, user authorization and user accounting functions. It may be a Cisco ACS 
or product such as Cisco Secure, available from Cisco Systems, Inc. of San Jose, 
California, or an equivalent product. In accordance with a presently preferred 
embodiment of the present invention, the Remote Authentication Dial-In User Service 
(RADIUS) protocol is used as the communication protocol between the service selection 

10 gateway and the AAA server. RADIUS is an Internet standard track protocol for 

carrying authentication, authorization, accounting and configuration information between 
a gateway device that desires to authenticate its links and a shared AAA server. Those of 
ordinary skill in the art will realize that other Internet protocols such as TACSCS+ can be 
used as acceptable authentication communications links between the various 

15 communications devices that encompass the data communications network and still be 
within the inventive concepts disclosed herein. 

The service selection gateway (SSG) is a device which couples the user to the 
data communications network. The user may log directly into the service selection 
20 gateway or may do so via an intermediate server such as a network access server. The 
term gateway is not meant to be limited to a single type of device, as any device, 
hardware or software, that may act as a bridge between the user and the network may be 
considered a gateway for the purposes of this application. In accordance with a presently 



8 



CISCO-0650 

preferred embodiment of the present invention, the service selection gateway is a model 
6510 service selection gateway available from Cisco Systems, Inc. of San Jose, 
California. 

5 Turning now to FIG. 3, when the user 48 logs-in to the SSG 50, either directly or 

through one or more intermediate devices, the SSG 50 obtains the user's service profile 
from an AAA server 52. The user profile will contain an additional field detailing the 
QoS level to be afforded the user in accordance with a presently preferred embodiment of 
the present invention. The SSG 50 stores the QoS level associated with the user in a local 
10 memory or cache associated with the user and, in effect, acts as an edge router for the 
user in all subsequent outbound communications forwarded to the Internet 54 or other 
data communications network during the session. The SSG 50 simply replaces the 
ToS/Differentiated Services with a bit pattern corresponding to the user's QoS level. 

15 This approach provides a number of important advantages. First, the QoS level 

for the user need only be set once in establishing the user's service profile. The existing 
AAA system will assure that the user's service profile is available regardless of the PoP 
that the user logs-in on. This means that roaming users will be supported where they 
could not easily be supported in the edge router system approach. Second, maintaining 

20 and modifying the QoS level associated with a user is quite simple—simply modify the 
user service profile once. Third, this approach allows implementation of a pay-per-use 
approach to QoS where a user may negotiate with an SSG to obtain a particular QoS level 
that the user would not otherwise receive to cover a particular session or one or more 



9 



CISCO-0650 

particular flows within a session. This could be used where a user desires to send time 
critical communications such as voice over IP or video over IP where dropouts are 
distracting and undesirable. In such a case, the user could be billed or in some way 
charged for the use, if desired. The SSG in conjunction with the AAA server can 
5 effectively track the user's use of the on-demand service and send RADIUS (or 

equivalent) packets to the AAA server. A number of billing and use schemes can now be 
implemented that were unavailable under the edge router system. 

Turning now to FIG. 4, a method in accordance with one embodiment of the 
10 present invention is described. At reference numeral 100 the QoS level to be afforded all 
packets sent by the user is set in the user profile of the user. This is stored in AAA 
servers preferably distributed about the data communications network. 

At reference numeral 102 the user attempts log-in at a PoP containing a service 
15 selection gateway —either directly or through a network access server or other 
intermediate server. 

At reference numeral 104 the SSG queries an AAA server using the RADIUS (or 
an equivalent) protocol and obtains the QoS level specified in the user's service profile. 

20 

At reference numeral 106 the SSG applies the QoS level for the user by setting 
the ToS precedence bits of each IP packet sent by the user to the QoS value specified in 
the user's service profile or to a direct mapping of that value. Note that QoS level may be 
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implemented using other bits in the packet as would be apparent to those of ordinary skill 
in the art. 



The above procedure describes a n subscription"-based QoS approach. A different 
5 "pay-per-use" QoS approach is detailed in FIG. 5. 



At reference numeral 108 the user attempts log-in at a PoP containing a service 
selection gateway— either directly or through an intermediate network access server or 
other intermediate device. 

10 

At reference numeral 1 10 the user signals the SSG of a selected QoS level to use. 
This may be for all packets sent during the session, for all packets sent during the session 
of a particular protocol type or from or to a particular Layer 4 port number (e.g., voice 
over IP might be set to a higher QoS than standard traffic) and the like. This can be 
15 accomplished through a conventional menuing system, through a dashboard application 
program in communication with the SSG and/or through direct command to the SSG. 



At reference numeral 112 and SSG optionally sends accounting packets detailing 
the user's use of the QoS level within the data communications network so that pay-per- 
20 use may be realized. 



At reference numeral 1 14 the SSG applies the user selected QoS levels to selected 
packets in accordance with policy set by the user to the ToS precedence bits of the ToS 
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field of IP packets sent by the user. This happens until the user selects another QoS level 
or logs-out. 

Alternative Embodiments 

While embodiments and applications of the invention have been shown and 
described, it would be apparent to those of ordinary skill in the art, after a perusal of the 
within disclosure, that many more modifications than mentioned above are possible 
without departing from the inventive concepts herein. The invention, therefore, is not to 
be restricted except in the spirit of the appended claims. 
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CLAIMS 

What is claimed is: 

1. A method of setting Quality of Service bits of packets sent by a user of a 
data communications network, comprising: 

obtaining a user service profile configured with a QoS level for the user in 
response to a user log-in attempt to a service selection gateway; 

routing all packets originated by the user through the SSG during the 

session; 

setting, in the SSG, the QoS bits of packets originated by the user in 
accordance with the QoS level for the user; and 

passing, after said QoS bits have been set, said packets on to the data 
communications network. 

2. A method in accordance with claim 1 wherein all packets transmitted by 
the user have QoS bits set in accordance with the QoS level for the user. 



3. A method of setting the Quality of Service bits of packets sent by a user of 
a data communications network, comprising: 

initiating a request to an authentication, authorization and accounting 
(AAA) server in response to the user's attempt to log-in; 

receiving, in response to said request, a user service profile corresponding 
to the user, said user service profile including a Quality of Service field; 
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using said Quality of Service field to set QoS bits within packets 
transmitted by the user. 

4. A method in accordance with claim 3 wherein all packets transmitted by 
the user have QoS bits set in accordance with said Quality of Service field of said user 
service profile. 

5. A method of setting the Quality of Service bits of packets sent by a user of 
a data communications network, comprising: 

at a service selection gateway to which the user is in communication a 
request from the user to assign a particular Quality of Service level to at least one packet 
flow transmitted by the user; 

assigning, in response to said request, a Quality of Service level to said at 
least one packet flow; 

setting QoS bits within packets belonging to said at least one packet flow 
received at the service selection gateway in accordance with said Quality of Service 
level; and 

transmitting said packets belonging to said at least one packet flow to the 
data communications network. 

6. A method in accordance with claim 5 wherein all said packets of said at 
least one packet flow in an IP packet. 
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7. 



A method in accordance with claim 6 wherein said QoS bits are the 



precedence bits within the ToS/Differentiated Services field of said IP packets. 



8. 



A method in accordance with claim 5 further comprising: 



5 



communicating between the service selection gateway and an AAA server 



said request. 



9. A method in accordance with claim 8 further comprising: 

communicating between the service selection gateway and the AAA 
10 server information related to the quantity of packets transmitted by the user and modified 
fy by the service selection gateway with respect to the QoS bits. 

W 10. A method in accordance with claim 8, further comprising: 

: s communicating between the service selection gateway and the AAA 

{1 15 server information related to the duration of time that packets transmitted by the user are 
modified by the service selection gateway with respect to the QoS bits. 

11. A method in accordance with claim 10, further comprising: 

communicating between the service selection gateway and the AAA 
20 server information related to the quantity of packets transmitted by the user and modified 
by the service selection gateway with respect to the QoS bits. 
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12. An apparatus for setting Quality of Service (QoS) bits of packets sent by a 
user of a data communications system to the data communications system, said apparatus 
comprising: 

a service selection gateway (SSG) in communication with the user, said 
SSG also in communication with an authentication, authorization and accounting (AAA) 
server, said SSG receiving a user service profile including a QoS level from the AAA 
server in response to an attempt to log-in by the user; and 

a packet modifier associated with said SSG, said packet modifier 
modifying QoS bits of packets sent by the user to reflect the QoS level received for the 
user from the AAA server. 

13. An apparatus according to claim 12 wherein all packets transmitted by the 
user to the data communications network via the SSG are modified. 

14. An apparatus according to claim 12 wherein packets belonging to at least 
one flow of packets transmitted by the user to the data communications network via the 
SSG are modified. 

15. An apparatus according to claim 13 wherein all modified packets are IP 
packets. 

16. An apparatus according to claim 14 wherein all modified packets are IP 
packets. 
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17. An apparatus according to claim 15 wherein the QoS bits are the 
precedence bits in the ToS/Differentiated Services field of the IP packet. 

18. An apparatus according to claim 16 wherein the QoS bits are the 
5 precedence bits in the ToS/Differentiated Service field of the IP packet. 

19. An apparatus for setting Quality of Service (QoS) indicator bits of packets 
sent by a user of a data communications system to the data communications system, said 
apparatus comprising: 

a service selection gateway (SSG) in communication with the user and the 
data communications network; 

a packet modifier associated with said SSG, responsive to a QoS request 
by the user, setting a QoS bit field of packets sent by the user to the data communications 
network via the SSG. 

20. An apparatus according to claim 19 wherein said QoS bit field is set to a 
value specified in said QoS request. 

21. An apparatus according to claim 20 wherein said QoS bit field is set for all 
20 packets sent by the user to the data communications network via the SSG. 
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22. An apparatus according to claim 20 wherein said QoS bit field is set for all 
packets sent by the user to the data communications network via the SSG which packets 
belong to at least one packet flow specified in said QoS request 

5 23. An apparatus according to claim 19 wherein said SSG is in 

communication with an AAA server and sends the AAA server information relating to 
the number of packets sent by the user to the data communications network via the SSG 
which are modified in accordance with said QoS request. 

24. An apparatus according to claim 20 wherein said SSG is in 
communication with an AAA server and sends the AAA server information relating to 
the number of packets sent by the user to the data communications network via the SSG 
which are modified in accordance with said QoS request. 

25. An apparatus according to claim 21 wherein said SSG is in 
communication with an AAA server and sends the AAA server information relating to 
the number of packets sent by the user to the data communications network via the SSG 
which are modified in accordance with said QoS request. 

20 26. An apparatus according to claim 22 wherein said SSG is in 

communication with an AAA server and sends the AAA server information relating to 
the number of packets sent by the user to the data communications network via the SSG 
which are modified in accordance with said QoS request. 
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27. An apparatus according to claim 19 wherein said SSG is in 
communication with an AAA server and sends the AAA server information relating to 
the amount of time that said QoS request is in effect. 

28. An apparatus according to claim 20 wherein said SSG is in 
communication with an AAA server and sends the AAA server information relating to 
the amount of time that said QoS request is in effect. 

29. An apparatus according to claim 21 wherein said SSG is in 
communication with an AAA server and sends the AAA server information relating to 
the amount of time that said QoS request is in effect. 

30. An apparatus according to claim 22 wherein said SSG is in 
communication with an AAA server and sends the AAA server information relating to 
the amount of time that said QoS request is in effect. 
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ABSTRACT OF THE DISCLOSURE 



Certain bits of a packet, such as bits in the IP header of an IP packet, are used to 
designate the type of service or Quality of Service (QoS) level to be afforded to the 
packet as it passes through a data communications network. A user entitled to a certain 
QoS level logs into a service selection gateway SSG. The SSG queries an authentication, 
authorization and accounting (AAA) server in response to a log-in attempt by the user. 
Upon authorization, the AAA server returns an access accept signal in addition to an 
indication from the user's service profile (user profile) as to the QoS level to be afforded 
the user. While the user is logged in, all packets are routed through the SSG. The SSG 
sets the certain bits of the packet in accordance with the user's assigned QoS level so that 
as the packets are routed through the data communications network, they are consistently 
afforded the assigned Quality of Service level. In another aspect of the invention, on- 
demand QoS may be provided by the SSG and accounted for by communications with the 
AAA server. 
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